Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa
File: 3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa (raw, json)
Hash identifier: cw0igel95ohPhgul5xAvynTkRNKNXlYr6RQuchOVQaY=
Subject key identifier: 98:99:7D:67:F9:AC:D6:8D:3B:9F:A1:63:4D:E1:61:C2:AD:2A:14:00
Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Certificate serial: 053279BC73398D527D88EE45C81AA66B50CA5B12
Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa
Signing time: Mon 01 Jul 2024 01:03:19 +0000
ROA not before: Mon 01 Jul 2024 00:58:19 +0000
ROA not after: Mon 30 Jun 2025 01:03:19 +0000
asID: 4800
IP address blocks: 123.231.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:32:79:bc:73:39:8d:52:7d:88:ee:45:c8:1a:a6:6b:50:ca:5b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Validity
Not Before: Jul 1 00:58:19 2024 GMT
Not After : Jun 30 01:03:19 2025 GMT
Subject: CN=98997D67F9ACD68D3B9FA1634DE161C2AD2A1400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:ec:a8:37:98:81:fe:30:8f:a9:28:fc:75:
ae:00:8c:13:4e:96:40:4f:52:a9:a4:87:3a:b3:76:
ee:5a:94:13:f1:92:56:ac:a1:d9:6f:aa:1e:08:6a:
c9:73:51:e0:10:bb:3e:48:ee:f6:21:f4:bb:5b:53:
a7:1b:4e:c4:db:57:24:6c:31:85:39:a7:ae:79:5c:
66:4b:18:48:e6:26:1a:87:ad:1c:d5:95:75:a9:5c:
92:60:21:c7:ef:ea:b7:d6:4d:56:da:33:ec:86:af:
4b:b4:34:3f:19:65:2a:31:a0:50:22:ce:d2:eb:88:
6c:d0:62:d2:d3:8a:53:ce:40:1a:8c:07:f6:ba:e6:
ed:da:c2:15:06:79:49:df:f0:c8:9d:d7:a6:a7:17:
9e:97:fa:86:c0:1e:b1:41:dd:a7:8e:7c:aa:1f:39:
d8:a7:9f:20:4f:b9:66:c4:20:4a:40:cf:09:23:73:
a7:61:5f:e2:40:b0:8d:1a:12:07:3c:ea:e1:4d:1c:
79:04:ba:3b:09:ad:8e:51:8b:f6:16:f1:2c:7f:aa:
8c:a7:c0:c7:45:3d:74:f6:17:17:2e:5a:1b:e1:64:
4d:1e:b2:67:b8:f4:01:66:60:47:c7:05:d7:ed:d1:
65:77:02:50:41:e7:35:f5:06:42:df:ef:8a:d6:ed:
91:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:99:7D:67:F9:AC:D6:8D:3B:9F:A1:63:4D:E1:61:C2:AD:2A:14:00
X509v3 Authority Key Identifier:
keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3132382e302f31372d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.231.128.0/17
Signature Algorithm: sha256WithRSAEncryption
03:84:87:47:ec:ed:aa:57:ea:a8:25:c1:f9:6f:a5:c8:aa:ed:
02:af:b0:16:c2:f7:1f:18:7a:01:5a:27:8c:98:e8:1b:c8:07:
00:86:af:af:9e:4f:b4:00:b9:09:2b:4c:fc:50:8e:fc:ff:22:
36:c5:a1:08:c8:fc:26:b7:59:98:ec:02:06:60:ff:0c:50:83:
89:7a:73:a1:cb:bb:5c:46:35:3c:15:67:3a:de:c1:5e:c1:df:
7d:86:13:f1:2f:c0:77:91:65:3f:e0:a2:bc:77:a8:f3:b0:31:
60:11:b4:5d:b0:68:60:a8:91:61:08:52:cd:bd:2e:f5:d1:1d:
54:88:d2:14:2c:7a:98:7b:58:21:a3:22:01:9d:e3:9d:75:06:
9e:27:83:a6:5c:cb:97:24:d3:76:56:8d:54:62:cf:42:7c:3e:
aa:7e:03:d7:b3:77:be:ac:ea:88:f4:7d:fa:fd:79:92:f5:e7:
f3:52:b7:c7:6c:e7:5a:17:2f:0a:40:ce:67:d7:3e:29:49:a7:
bb:a6:88:0b:2c:b7:4a:0b:7b:48:8f:36:bd:f5:3d:e2:e8:c7:
51:86:a7:b2:0e:df:3e:0c:65:b5:10:78:a8:ed:1b:91:73:b7:
6e:9f:38:ba:25:00:78:9e:39:62:4d:91:7f:45:b6:73:90:0b:
dc:2d:78:8b
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUBTJ5vHM5jVJ9iO5FyBqma1DKWxIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD
RjY2NzUyQjAeFw0yNDA3MDEwMDU4MTlaFw0yNTA2MzAwMTAzMTlaMDMxMTAvBgNV
BAMTKDk4OTk3RDY3RjlBQ0Q2OEQzQjlGQTE2MzRERTE2MUMyQUQyQTE0MDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz2+yoN5iB/jCPqSj8da4AjBNO
lkBPUqmkhzqzdu5alBPxklasodlvqh4IaslzUeAQuz5I7vYh9LtbU6cbTsTbVyRs
MYU5p655XGZLGEjmJhqHrRzVlXWpXJJgIcfv6rfWTVbaM+yGr0u0ND8ZZSoxoFAi
ztLriGzQYtLTilPOQBqMB/a65u3awhUGeUnf8Mid16anF56X+obAHrFB3aeOfKof
OdinnyBPuWbEIEpAzwkjc6dhX+JAsI0aEgc86uFNHHkEujsJrY5Ri/YW8Sx/qoyn
wMdFPXT2FxcuWhvhZE0esme49AFmYEfHBdft0WV3AlBB5zX1BkLf74rW7ZFnAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUmJl9Z/ms1o07n6FjTeFhwq0qFAAwHwYDVR0j
BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2
QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2
NzUyQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04
NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTMyMzgyZTMwMmYz
MTM3MmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3vngDANBgkqhkiG
9w0BAQsFAAOCAQEAA4SHR+ztqlfqqCXB+W+lyKrtAq+wFsL3Hxh6AVonjJjoG8gH
AIavr55PtAC5CStM/FCO/P8iNsWhCMj8JrdZmOwCBmD/DFCDiXpzocu7XEY1PBVn
Ot7BXsHffYYT8S/Ad5FlP+CivHeo87AxYBG0XbBoYKiRYQhSzb0u9dEdVIjSFCx6
mHtYIaMiAZ3jnXUGnieDplzLlyTTdlaNVGLPQnw+qn4D17N3vqzqiPR9+v15kvXn
81K3x2znWhcvCkDOZ9c+KUmnu6aICyy3Sgt7SI82vfU94ujHUYansg7fPgxltRB4
qO0bkXO3bp84uiUAeJ45Yk2Rf0W2c5AL3C14iw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:52:52 2025 by rpki-client